STIGQter: STIG Summary: Database Security Requirements Guide Version: 3 Release: 1 Benchmark Date: 22 Jan 2021:

Access to external executables must be disabled or restricted.

DISA Rule

SV-206552r617447_rule

Vulnerability Number

V-206552

Group Title

SRG-APP-000141

Rule Version

SRG-APP-000141-DB-000093

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Disable use of or remove any external application executable object definitions that are not authorized.

Check Contents

Review the database for definitions of application executable objects stored external to the database.

Determine if there are methods to disable use or access, or to remove definitions for external executable objects.

Verify each application executable object listed is authorized by the ISSO. If any are not, this is a finding.

Vulnerability Number

V-206552

Documentable

False

Rule Version

SRG-APP-000141-DB-000093

Severity Override Guidance

Review the database for definitions of application executable objects stored external to the database.

Determine if there are methods to disable use or access, or to remove definitions for external executable objects.

Verify each application executable object listed is authorized by the ISSO. If any are not, this is a finding.

Check Content Reference

M

Target Key

2902

Comments